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Team:  Verifying  Evolving  Software 


SEI  team  members 

•  Dr.  Arie  Gurfinkel 

•  Dr.  Sagar  Chaki 


Collaborators 

•  Dr.  Anton  Belov  (Synopsys) 

•  Dr.  Nikolaj  Bjorner  (Microsoft 


Research) 

Grigory  Fedyukovich  (Univ.  of 
Lugano) 

Dr.  Pierre-Loic  Garoche  (Onera) 

Dr.  Alexander  Ivrii  (IBM) 

Dr.  Temesghen  Kahsai  (NASA 
Ames) 

Prof.  Natasha  Sharygina 
(University  of  Lugano) 

Prof.  Ofer  Strichman  (Technion) 


Overview 


Problem:  Scalable  verification  of  evolving  software 

•  reduce  re-verification  effort 

•  close  semantic  gap  between  compiler  and  verifier 

•  enable  safe  use  of  compiler  optimizations  in  safety-critical  code 

Related  Work:  Current  solutions  are  limited  by 

•  effectiveness  (syntactic  slicing,  regression  verification) 

•  high-maintenance  cost  (translation  validation) 

•  narrow  applicability  (upgrade  checking) 

Key  Idea:  Propagate  verification  certificates  across  evolution  boundaries 

•  generate  verification  certificates  using  proof-based  verification  techniques 

•  iteratively  guess  the  mapping  between  original  and  evolved  program 

•  propagate  certificates  and  strengthen  using  incremental  inductive  verification 

-  IIV  is  a  new  verification  technique  co-developed  by  us 
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Model  Problem:  Certifying  Compiler  for  C 


Research  Tasks 


Verifying  instcomine  and  simplifycfg  optimizations  of  LLVM 

•  with  Prof.  Natasha  Sharygina  and  Grigory  Fedyukovich  (Univ.  of  Lugano) 
Closing  the  semantic  gap  between  Compiler  and  Verifier 

•  with  Dr.  Anton  Belov  (Synopsys)  and  J.  Marques-Silva  (UCD) 

Minimizing  verification  certificates 

•  with  Dr.  Anton  Belov  (Synopsys)  and  Dr.  Alexander  Ivrii  (IBM) 

Certifying  compiler  for  Luster 

•  with  Dr.  Temesghen  Kahsai  (NASA  Ames)  and  Dr.  PL.  Garoche  (Onera) 
Polyhedral  Verification  Certificates 

•  with  Dr.  Nikolaj  Bjorner  (Microsoft  Research) 
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Our  Approach 

1 .  Compute  a  verification  certificate  C1  for  program  P1 

2.  Evolve  program  Pi  to  a  program  D, 

•  P2  is  obtained  by  compiler  optimization^^  change,  semantics 
change,  etc. 

3.  Adapt  C1  to  certificate  C2  for  P2 

4.  Strengthen  C2  if  necessary 


Enabled  by  our  recent 
breakthroughs  in 
Inductive  Incremental 
Verification  that 
produces  and  uses 
verification  certificates 
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Research  Tasks 


Verifying  instcomine  and  simplifycfg  optimizations  of  LLVM 

•  with  Prof.  Natasha  Sharygina  and  Grigory  Fedyukovich  (Univ.  of  Lugano) 
Closing  the  semantic  gap  between  Compiler  and  Verifier 

•  with  Dr.  Anton  Belov  (Synopsys)  and  J.  Marques-Silva  (UCD) 


Minimizing  verification  certificates 

•  with  Dr.  Anton  Belov  (Synopsys)  and  Dr.  Alexander  Ivrii  (IBM) 

Certifying  compiler  for  Luster 

•  with  Dr.  Temesghen  Kahsai  (NASA  Ames)  and  Dr.  PL.  Garoche  (Onera) 
Polyhedral  Verification  Certificates 

•  with  Dr.  Nikolaj  Bjorner  (Microsoft  Research) 
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Compiler  and  Verifier  Semantic  Gap 
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Misper:  Synthesizing  Safe  Bit-Precise 
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FrankenBit:  Bit-Precise  Verification  w/  Many  Bits 


Misper  to  synthesize  bit-precise  invariants 
LLBMC  to  search  for  counterexamples 
Silver  and  Bronze  medals  at  SV-COMP  2014 

ControlFlow  DeviceDrivers64 


1.  CPAchecker 
2.  FrankenBit 
3.  LLBMC 
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http://sv-comp.sosv-lab.org/2014/results/index.php 
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Outcomes 


Tools 

•  FrankenBit  -  bit-precise  verifier  for  C 

•  Niagara  -  validator  for  LLVM  compiler  optimizations 

•  Zuster  -  verifier  for  Luster  programs 

Publications 

•  Synthesizing  Safe  Bit-Precise  Invariants.  TACAS  2014 

•  FrankenBit:  Bit-Precise  Verification  with  Many  Bits  (Tool  paper).  TACAS  2014 

•  Incremental  Verification  of  Compiler  Optimizations.  NASA  FM  2014 

•  Synthesizing  Modular  Invariants  for  Synchronous  Code.  HCVS  2014 

•  Small  Inductive  Safe  Invariants.  FMCAD  2014 

•  Property  Directed  Polyhedral  Abstraction.  VMCAI  2015 

•  Automated  Discovery  of  Simulation  Between  Programs.  Submitted  to  TACAS 
2015 
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Contact  Information 

Arie  Gurfinkel 

Sr.  Researcher 
SSD 

Telephone:  +1  412-268-5800 
Email:  arie@sei.cmu.edu 


Web 

www.sei.cmu.edu/staff/arie 

www.sei.cmu.edu/contact.cfm 


U.S.  Mail 

Software  Engineering  Institute 
Customer  Relations 
4500  Fifth  Avenue 
Pittsburgh,  PA  15213-2612 
USA 

Customer  Relations 

Email:  info@sei.cmu.edu 
Telephone:  +1  412-268-5800 

SEI  Phone:  +1  412-268-5800 

SEI  Fax:  +1  412-268-6257 
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